Aren
/
NetBSD
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
NetBSD/crypto
History
christos db1e653281 If PAM is configured to read user-specified environment variables 
and UseLogin=yes in sshd_config, then a hostile local user may
attack /bin/login via LD_PRELOAD or similar environment variables
set via PAM.

CVE-2015-8325, found by Shayan Sadigh, via Colin Watson
https://anongit.mindrot.org/openssh.git/commit/?\
id=85bdcd7c92fe7ff133bbc4e10a65c91810f88755

XXX: pullup-7
 		2016-04-14 16:42:09 +00:00
..
dist/ipsec-tools CID 1356385: Add fallthrough comment 2016-03-16 21:09:39 +00:00
external If PAM is configured to read user-specified environment variables 2016-04-14 16:42:09 +00:00
Makefile.openssl
TODO